private void LoginBtn_Click(object sender, EventArgs e) { string sqlStr = ""; Login = false; if (txtUsername.Text.Length == 0 || txtPassword.Text.Length == 0) { MessageBox.Show("Missing username or password. " + "Please try again."); txtUsername.Clear(); txtPassword.Clear(); } else { try { DataTable dt = Connect.query("Select * from Staff WHERE Staff_ID = '" + txtUsername.Text + "' AND Password = '******'"); if (dt.Rows.Count > 0) { if (dt.Rows[0]["Staff"].ToString().Equals("True")) { Staff = true; Login = true; getVar.name = "Login As:" + dt.Rows[0]["LastName"].ToString() + " " + dt.Rows[0]["FirstName"].ToString(); getVar.storeID = dt.Rows[0]["Store_ID"].ToString(); } else { Staff = false; Login = true; getVar.name = "Login As:" + dt.Rows[0]["FirstName"].ToString(); getVar.storeID = dt.Rows[0]["Store_ID"].ToString(); } } else { MessageBox.Show("Incorrect user name or password. " + "Please try again."); txtUsername.Clear(); txtPassword.Clear(); } if (Login) { if (Staff) { Menu staffmenu = new Menu(this); staffmenu.Show(); this.Hide(); txtUsername.Clear(); txtPassword.Clear(); } else if (!Staff) { SearchItem nonstaffmenu = new SearchItem(this); nonstaffmenu.Show(); this.Hide(); txtUsername.Clear(); txtPassword.Clear(); } } } catch (Exception ex) { MessageBox.Show(ex.Message + "\nSQL: " + sqlStr); } } }